$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/234e46a7-d4c0-4498-863f-fe0ed912a21e.roa File: 234e46a7-d4c0-4498-863f-fe0ed912a21e.roa (raw, json) Hash identifier: k0SefcaZvhxlU9tUiSrZ6tq1UDu393XrymiP+8m4mXo= Subject key identifier: F4:07:6C:87:70:69:10:71:A1:98:40:79:08:68:9F:B9:3F:19:10:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1BBFC4CD2DC800F6EA2133310916655000EABE46 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/234e46a7-d4c0-4498-863f-fe0ed912a21e.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 40.235.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:bf:c4:cd:2d:c8:00:f6:ea:21:33:31:09:16:65:50:00:ea:be:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=595060d288ca78f031c4afcecfae96aa0dc57538bb1a868c3a29ad87458fd2d6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:8c:62:f8:9b:91:7e:e0:f8:64:0f:be:4c:08: 4b:49:c4:7c:94:e6:fc:e1:97:3b:ac:bb:57:2f:88: 99:54:9a:25:34:35:18:ba:9a:74:a8:3c:72:f5:bd: 2b:a9:fd:d1:3d:0b:36:7a:f3:67:9e:6d:84:dd:97: 78:47:98:9b:58:a7:d9:c2:96:8b:34:43:26:5e:b8: 5d:36:8d:4c:2c:bf:70:ae:a2:fe:69:3f:22:58:1d: ac:a5:e3:8d:71:e7:4f:1e:b7:fc:01:58:df:61:cf: e6:b9:8d:60:3f:bc:f1:ba:45:c2:41:e9:4c:f2:96: 8b:ae:49:2f:c1:88:79:02:a6:f0:b5:06:49:ca:25: 3a:c5:b9:32:97:c4:8e:4c:bc:ab:0e:fc:8d:75:93: 91:99:02:a5:2c:15:cf:e7:bc:41:85:ee:90:26:bc: a1:3d:9a:6a:06:0a:0a:4c:71:b1:a1:cc:8b:c5:26: 45:32:e9:f4:77:eb:f6:3c:29:44:f9:75:46:3b:fc: b3:28:59:da:14:3f:3c:a8:43:e5:f1:2b:a8:f4:e5: 3c:4e:43:6e:9e:1a:06:8b:be:7f:f3:2b:b0:0b:56: 24:9d:0b:18:26:18:c2:2a:93:35:9d:fc:13:cf:24: c8:bd:00:27:33:60:51:24:65:c1:da:06:b5:84:b2: c9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:07:6C:87:70:69:10:71:A1:98:40:79:08:68:9F:B9:3F:19:10:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/234e46a7-d4c0-4498-863f-fe0ed912a21e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.235.0.0/18 Signature Algorithm: sha256WithRSAEncryption c1:09:dd:dc:0e:50:72:09:68:88:a5:cc:37:16:e4:33:3a:6c: 5d:cd:eb:8d:a5:3e:71:e3:f4:7c:09:0f:c3:7d:6d:04:fe:00: 2a:61:1d:ee:30:2e:86:9d:cd:33:87:2c:1e:3c:36:b7:98:00: ee:8a:c5:26:fc:ba:0d:1d:5f:e1:33:17:c0:46:69:42:95:2a: bc:09:81:3d:7d:dc:71:32:32:d9:bf:d7:cc:c3:f8:32:e8:51: 87:db:7e:84:8d:7e:10:3d:26:91:34:22:52:39:de:49:c8:d9: d2:d1:83:c8:eb:7c:c0:a6:b6:37:71:88:22:eb:35:9f:9d:1b: 2a:89:ac:4a:8f:eb:d9:cb:e4:b5:76:8b:c0:cd:5e:e9:ff:b9: a0:75:c0:29:94:bf:f4:0e:3c:15:48:97:e7:f5:f6:db:15:13: cd:36:9c:a3:7e:19:09:46:4e:2b:a4:1c:0a:ad:cd:03:f3:06: 07:0f:57:ab:03:15:ad:07:5b:d0:27:d6:aa:20:45:df:df:c7: c4:5c:5f:cc:fc:22:ec:7c:8e:e9:2b:cd:2d:f8:e1:cb:93:e4: 3b:28:d4:ad:39:74:84:ba:81:d5:e2:62:41:f1:29:d6:24:0e: a3:06:95:96:09:92:9e:cb:62:41:99:96:d6:39:96:65:40:14: 74:3c:74:ec -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG7/EzS3IAPbqITMxCRZlUADqvkYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTUwNjBkMjg4Y2E3OGYwMzFjNGFmY2VjZmFlOTZhYTBk YzU3NTM4YmIxYTg2OGMzYTI5YWQ4NzQ1OGZkMmQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVjGL4m5F+4PhkD75MCEtJxHyU5vzhlzusu1cviJlUmiU0 NRi6mnSoPHL1vSup/dE9CzZ682eebYTdl3hHmJtYp9nClos0QyZeuF02jUwsv3Cu ov5pPyJYHayl441x508et/wBWN9hz+a5jWA/vPG6RcJB6UzylouuSS/BiHkCpvC1 BknKJTrFuTKXxI5MvKsO/I11k5GZAqUsFc/nvEGF7pAmvKE9mmoGCgpMcbGhzIvF JkUy6fR36/Y8KUT5dUY7/LMoWdoUPzyoQ+XxK6j05TxOQ26eGgaLvn/zK7ALViSd CxgmGMIqkzWd/BPPJMi9ACczYFEkZcHaBrWEssnlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9Adsh3BpEHGhmEB5CGifuT8ZEB8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzNGU0NmE3LWQ0YzAtNDQ5OC04NjNmLWZlMGVkOTEyYTIxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYo6wAwDQYJKoZIhvcNAQELBQADggEBAMEJ3dwOUHIJaIilzDcW5DM6bF3N 642lPnHj9HwJD8N9bQT+ACphHe4wLoadzTOHLB48NreYAO6KxSb8ug0dX+EzF8BG aUKVKrwJgT193HEyMtm/18zD+DLoUYfbfoSNfhA9JpE0IlI53knI2dLRg8jrfMCm tjdxiCLrNZ+dGyqJrEqP69nL5LV2i8DNXun/uaB1wCmUv/QOPBVIl+f19tsVE802 nKN+GQlGTiukHAqtzQPzBgcPV6sDFa0HW9An1qogRd/fx8RcX8z8Iux8jukrzS34 4cuT5Dso1K05dIS6gdXiYkHxKdYkDqMGlZYJkp7LYkGZltY5lmVAFHQ8dOw= -----END CERTIFICATE-----Generated at Mon Nov 25 02:57:24 2024 by rpki-client on console-fra.rpki-client.org